-
Software Configuration Guide (4.5)
-
Index - Software Config Guide, Cat 5000,4000,2926G,2926 (4.5)
-
About This Guide
-
Product Overview
-
Command-Line Interfaces
-
Configuring the Supervisor Engine Software
-
Configuring Ethernet & Fast Ethernet Switching
-
Configuring Gigabit Ethernet Switching
-
Configuring Fast EtherChannel and Gigabit EtherChannel
-
Configuring Spanning Tree
-
Configuring Spanning-Tree PortFast, UplinkFast,& BackboneFast
-
Configuring VTP
-
Configuring VLANs
-
Configuring VLAN Trunks on Fast Ethernet and Gigabit Ethernet Ports
-
Configuring Dynamic Port VLAN Membership with VMPS
-
Checking Port Status and Connectivity
-
Administering the Switch
-
Controlling Access to the Switch Using Authentication
-
Using Redundant Supervisor Engines
-
Modifying the Switch Boot Configuration
-
Working With the Flash File System
-
Working With System Software Images
-
Working With Configuration Files
-
Configuring System Message Logging
-
Configuring DNS
-
Configuring CDP
-
Configuring NTP
-
Configuring Broadcast/Multicast Suppression
-
Configuring Protocol Filtering
-
Configuring IP Permit List
-
Configuring Secure Port Filtering
-
Configuring SNMP
-
Configuring RMON
-
Configuring SPAN
-
Using Switch TopN Reports
-
Configuring the Network Analysis Module
-
Configuring Multicast Services
-
Configuring ATM LAN Emulation
-
Configuring ATM PVCs and PVCs with Traffic Shaping
-
Configuring Multiprotocol Over ATM
-
Configuring the ATM Fabric Integration Module
-
Configuring InterVLAN Routing
-
Maintaining and Administering the RSM
-
Configuring the Layer 3 Fabric Integration Module
-
Configuring Multilayer Switching
-
Configuring NetFlow Data Export
-
Configuring FDDI/CDDI Switching
-
Configuring FDDI 802.10 Trunks
-
Configuring Token Ring Switching
-
Configuring Token Ring Filters
-
Table Of Contents
Configuring the Network Analysis Module
Understanding How the Network Analysis Module Works
Network Analysis Module Default Configuration
Configuring the Network Analysis Module from the NMS
Configuring the Network Analysis Module from the CLI
Using SPAN as a Traffic Source
Using NetFlow Data Export as a Traffic Source
Enabling the VLAN Monitor Option
Enabling the VLAN Agents Option
Additional Network Analysis Module Commands
Configuring the Network Analysis Module
This chapter describes how to configure the Catalyst 5000 series Network Analysis Module.
Note
For complete syntax and usage information for the commands used in this chapter, refer to the Command Reference for your switch.
This chapter consists of these sections:
•
•
•
•
•
Note
Understanding How the Network Analysis Module Works
For Ethernet VLANs, the Network Analysis Module extends the RMON support provided by the supervisor engine module software with the following (see the "Supported RMON and RMON2 MIB Objects" section for details):
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
The Network Analysis Module can analyze Ethernet VLAN traffic from either or both:
•
•
Note
The Network Analysis Module is managed and controlled from an SNMP management application, such as CiscoWorks2000 (see the "Using CiscoWorks2000" section).
Network Analysis Module Default Configuration
describes the Network Analysis Module default configuration.
Table 33-1 Network Analysis Module Default Configuration
Configuring the Network Analysis Module from the NMS
To configure the Network Analysis Module from the NMS, refer to the NMS documentation (see the "Using CiscoWorks2000" section). RMON domain configuration can be done only via SNMP from the NMS.
Configuring the Network Analysis Module from the CLI
These sections describe how to use the CLI to configure the Network Analysis Module:
•
•
•
•
Using SPAN as a Traffic Source
To use the SPAN source port as a traffic source for the Network Analysis Module, set the Network Analysis Module as the SPAN destination port.
The Network Analysis Module can analyze Ethernet VLAN traffic from Ethernet or Fast Ethernet SPAN source ports, or you can specify an Ethernet VLAN as the SPAN source. To use the Network Analysis Module VLAN Monitor option, set a trunk port as the SPAN source port (for more information, see the "Enabling the VLAN Monitor Option" section)
Using NetFlow Data Export as a Traffic Source
To use NDE as a traffic source for the Network Analysis Module, enable the NetFlow Monitor option to allow the Network Analysis Module to receive the NDE stream from an NFFC or NFCC II installed in the switch. The resultant statistics are presented on reserved ifIndex.3000.
Note
To enable the NetFlow Monitor option:
Step 1
Step 2
Console> show module mod_numThis example shows how to display the MAC address:
Console> show module 4Mod Module-Name Ports Module-Type Model Serial-Num Status--- ------------------- ----- --------------------- --------- --------- -------4 1 Network Analysis/RMON WS-X5380 008175475 okMod MAC-Address(es) Hw Fw Sw--- -------------------------------------- ------ ---------- -----------------4 00-e0-14-10-18-00 0.100 4.1.1 4.3(1)
Note
Step 3
Step 4
Step 5
Console> set snmp extendedrmon netflow enable passwordThis example shows how to enable the NetFlow Monitor option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon netflow enable passwordSnmp extended RMON netflow enabledConsole> (enable) show snmpRMON: DisabledExtended RMON: EnabledExtended RMON Netflow: EnabledExtended RMON Vlanmode: DisabledExtended RMON Vlanagent: Disabled<...output truncated...>Console> (enable)Step 6
Console> set mls nde enable
Note
Enabling the VLAN Monitor Option
When the SPAN source is a trunk port and the VLAN Monitor option is enabled, the Network Analysis Module aggregates statistics by VLAN, rather than by source MAC address.
To enable the VLAN Monitor option, perform this task in privileged mode:
This example shows how to enable the VLAN Monitor option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon vlanmode enableSnmp extended RMON vlanmode enabledConsole> (enable) show snmpRMON: DisabledExtended RMON: EnabledExtended RMON Netflow: DisabledExtended RMON Vlanmode: EnabledExtended RMON Vlanagent: Disabled<...output truncated...>Console> (enable)Enabling the VLAN Agents Option
Note
When the VLAN Agents option is enabled, the Network Analysis Module aggregates statistics by VLAN as well as by port.
To enable the VLAN Agents option, perform this task in privileged mode:
This example shows how to enable the VLAN Agents option and how to verify that it is enabled:
Console> (enable) set snmp extendedrmon vlanagent enableSnmp extended RMON vlanagent enabledConsole> (enable) show snmpRMON: DisabledExtended RMON: EnabledExtended RMON Netflow: DisabledExtended RMON Vlanmode: DisabledExtended RMON Vlanagent: Enabled<...output truncated...>Console> (enable)Additional Network Analysis Module Commands
The Network Analysis Module also supports these commands, which are described in the Command Reference for your switch:
•
Clears the modules's configuration and resets it•
Clears the module's RMON configuration from NVRAM•
Clears the module's MAC and port counters•
Deletes all entries in the module's error log•
•
Enables or disables the module•
Sets the name of the module•
Sets the name of the module's port (all other set port commands return an error message)•
Displays the module's error logs•
With a Network Analysis Module installed, displays "Network Analysis/RMON" under "Module-Type"•
Shows MAC counters•
•
Shows port status and counters•
Shows module information•
Shows the module's SNMP ifindex•
Shows port status information•
Shows port trap as disabled (cannot be enabled for the Network Analysis Module)•
•
•
•
...RMON-Mcast RMON-Bcast RMON-Ucast RMON-DropEvent-------------------- -------------------- -------------------- -----------------0 0 0 0•
With SPAN enabled and the Network Analysis Module as the SPAN destination, the command displays these additional lines when a Network Analysis Module is installed:
...RMON-Mcast RMON-Bcast RMON-Ucast RMON-DropEvent-------------------- -------------------- -------------------- -----------------0 0 0 0•
•
Note
•
Note
